← back
CVE-2010-3465

CVE-2010-3465

EPSS 1.1%
Multiple cross-site scripting (XSS) vulnerabilities in XSE Shopping Cart 1.5.2.1 and 1.5.3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to Default.aspx and the (2) type parameter to SearchResults.aspx.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/68029http://osvdb.org/68030http://pridels-team.blogspot.com/2010/09/xse-shopping-cart-xss-vuln.htmlhttp://secunia.com/advisories/41453https://exchange.xforce.ibmcloud.com/vulnerabilities/61828